2 files changed, 209 insertions, 1 deletions

diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml
index 07c4cc4d0..c6aa3f74b 100644
--- a/.github/workflows/ci.yml
+++ b/.github/workflows/ci.yml
@@ -6,7 +6,7 @@ on:
       - master
   push:
     branches:
-      - master
+      - '**'
 
 jobs:
   linters:
diff --git a/lualib/rspamadm/ratelimit.lua b/lualib/rspamadm/ratelimit.lua
new file mode 100644
index 000000000..558554b10
--- /dev/null
+++ b/lualib/rspamadm/ratelimit.lua
@@ -0,0 +1,208 @@
+local argparse = require 'argparse'
+local redis = require 'lua_redis'
+local logger = require 'rspamd_logger'
+
+local parser = argparse()
+        :name "ratelimit"
+        :description "Manage ratelimit functional"
+        :help_description_margin(32)
+        :command_target('command')
+        :require_command(true)
+
+local track_limits = parser:command 'track'
+                           :description 'Track last limits of ratelimit module'
+
+track_limits:option "-q --quantity"
+            :description("Number of limits to track")
+            :argname("<quantity>")
+            :default(1)
+
+
+local upgrade_bucket = parser:command 'upgrade'
+                             :description 'Upgrade certain bucket or top limit bucket'
+upgrade_bucket:argument "prefix"
+              :description("Prefix of bucket to operate with")
+              :args("?")
+upgrade_bucket:option "-b --burst"
+              :description("Burst to set")
+              :argname("<burst>")
+              :args("?")
+upgrade_bucket:option "-r --rate"
+              :description("Rate to set")
+              :argname("<rate>")
+              :args("?")
+upgrade_bucket:option "-s --symbol"
+              :description("Symbol to set")
+              :argname("<symbol>")
+              :args("?")
+upgrade_bucket:option "-B --dynamic_burst"
+              :description("Dynamic burst to set")
+              :argname("<dynb>")
+              :args("?")
+upgrade_bucket:option "-R --dynamic_rate"
+              :description("Dynamic rate to set")
+              :argname("<dynr>")
+              :args("?")
+
+local unblock_bucket = parser:command 'unblock'
+                             :description 'Unblock certain bucket or number of buckets(default: 1)'
+
+parser:mutex(
+    unblock_bucket:argument "prefix"
+                  :description("Prefix of bucket to operate with")
+                  :args(1),
+    unblock_bucket:argument "quantity"
+                  :description("Number of buckets to ublock")
+                  :default(1)
+)
+
+
+local redis_params
+local lfb_cache_prefix = 'RL_cache_prefix'
+local redis_attrs = {
+    config   = rspamd_config,
+    ev_base  = rspamadm_ev_base,
+    session  = rspamadm_session,
+    log_obj  = rspamd_config,
+    resolver = rspamadm_dns_resolver,
+}
+
+
+local function track_limits_handler(args)
+    for i = 1, args.quantity do
+        local res, prefix = redis.request(redis_params, redis_attrs,
+                { 'ZRANGE', lfb_cache_prefix, -i, -i })
+        if res ~= 1 then
+            logger.errx('Redis request parameters are wrong')
+            os.exit(1)
+        end
+
+        local _, bucket_params = redis.request(redis_params, redis_attrs,
+                { 'HMGET', tostring(prefix[1]), 'l', 'b', 'r', 'dr', 'db' })
+
+        local last  = tonumber(bucket_params[1])
+        local burst = tonumber(bucket_params[2])
+        local rate  = tonumber(bucket_params[3])
+        local dynr  = tonumber(bucket_params[4]) / 10000.0
+        local dynb  = tonumber(bucket_params[5]) / 10000.0
+
+        print(string.format('prefix: %s, last: %s, burst: %s, rate: %s, dynamic_rate: %s, dynamic_burst: %s',
+                prefix[1], last, burst, rate, dynr, dynb))
+    end
+end
+
+local function upgrade_bucket_handler(args)
+    local prefix = args.prefix
+    if prefix == nil or prefix == "" then
+        local res = nil
+        res, prefix = redis.request(redis_params, redis_attrs,
+                { 'ZRANGE', lfb_cache_prefix, '-1', '-1' })
+        if res ~= 1 then
+            logger.errx('Redis request parameters are wrong')
+            os.exit(1)
+        end
+    end
+
+    if args.burst then
+        local res = redis.request(redis_params, redis_attrs,
+                { 'HSET', tostring(prefix), 'b', tostring(args.burst) })
+        if res ~= 1 then
+            logger.errx('Incorrect arguments for redis request for burst or prefix is incorrect')
+            os.exit(1)
+        end
+    end
+
+    if args.rate then
+        local res = redis.request(redis_params, redis_attrs,
+                { 'HSET', tostring(prefix), 'r', tostring(args.rate) })
+        if res ~= 1 then
+            logger.errx('Incorrect arguments for redis request for rate or prefix is incorrect')
+            os.exit(1)
+        end
+    end
+
+    if args.symbol then
+        local res = redis.request(redis_params, redis_attrs,
+                { 'HSET', tostring(prefix), 's', tostring(args.symbol) })
+        if res ~= 1 then
+            logger.errx('Incorrect arguments for redis request for symbol or prefix is incorrect')
+            os.exit(1)
+        end
+    end
+
+    if args.dynb then
+        local res = redis.request(redis_params, redis_attrs,
+                { 'HSET', tostring(prefix), 'db', tostring(args.dynb) })
+        if res ~= 1 then
+            logger.errx('Incorrect arguments for redis request for dynamic burst or prefix is incorrect')
+            os.exit(1)
+        end
+    end
+
+    if args.dynr then
+        local res = redis.request(redis_params, redis_attrs,
+                { 'HSET', tostring(prefix), 'dr', tostring(args.dynr) })
+        if res ~= 1 then
+            logger.errx('Incorrect arguments for redis request for dynamic rate or prefix is incorrect')
+            os.exit(1)
+        end
+    end
+
+end
+
+local function unblock_bucket_helper(prefix)
+    local res = redis.request(redis_params, redis_attrs, { 'HSET', tostring(prefix), 'b', 0 })
+    if res ~= 1 then
+        logger.errx('Failed to unblock bucket')
+        os.exit(1)
+    end
+end
+
+local function unblock_bucket_handler(args)
+    if (args.prefix == nil or args.prefix == "") then
+        unblock_bucket_handler(args)
+    end
+    unblock_bucket_helper(args.prefix)
+end
+
+local function unblock_buckets_handler(args)
+    for i = 1, args.quantity do
+        local res, prefix = redis.request(redis_params, redis_attrs,
+                { 'ZRANGE', lfb_cache_prefix, -i, -i })
+        if res ~= 1 then
+            logger.errx('Redis request parameters are wrong')
+            os.exit(1)
+        end
+        unblock_bucket_helper(prefix)
+    end
+end
+
+local command_handlers = {
+    track_limits    = track_limits_handler,
+    upgrade_bucket  = upgrade_bucket_handler,
+    unblock_bucket  = unblock_bucket_handler
+}
+
+local function handler(args)
+    local cmd_opts = parser:parse(args)
+
+    redis_params = redis.parse_redis_server('ratelimit')
+    if not redis_params then
+        logger.errx(rspamd_config, 'no servers are specified, disabling module')
+        os.exit(1)
+    end
+
+    local f = command_handlers[cmd_opts.command]
+    if not f then
+        parser:error(string.format("command isn't implemented: %s",
+                cmd_opts.command))
+    end
+    f(cmd_opts)
+end
+
+return {
+    name = 'ratelimit',
+    aliases = { 'ratelimit' },
+    handler = handler,
+    description = parser._description
+}
\ No newline at end of file